Multiple vulnerabilities in Mozilla Thunderbird

Описание

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, inject malicious code.

Below is a complete list of vulnerabilities:

1. Use after free vulnerability can be exploited to cause denial of service or execute arbitrary code.
2. Out of bounds memory access vulnerability can be exploited to cause denial of service.
3. Security vulnerability can be exploited to bypass security restrictions.
4. Security UI vulnerability can be exploited to spoof user interface.
5. Security vulnerability in can be exploited to bypass security restrictions.
6. Code injection vulnerability can be exploited to inject malicious code.
7. Memory safety vulnerability can be exploited to execute arbitrary code.
8. Security vulnerability in composition area can be exploited to bypass security restrictions.
9. Security UI vulnerability can be exploited to spoof user interface.
10. Out of bounds memory read vulnerability can be exploited to cause denial of service or gain privileges.

Первичный источник обнаружения

• MFSA2025-18
  

Связанные продукты

• Mozilla-Thunderbird

Список CVE

• CVE-2024-43097
  critical
• CVE-2025-1930
  critical
• CVE-2025-1931
  critical
• CVE-2025-1932
  critical
• CVE-2025-1933
  critical
• CVE-2025-1934
  high
• CVE-2025-1935
  warning
• CVE-2025-1936
  high
• CVE-2025-1937
  critical
• CVE-2025-1938
  high
• CVE-2025-26695
  high
• CVE-2025-26696
  high

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com